nixos-config/linux/singularity/vaultwarden.nix

{config, ...}: let
  vaultEnvironment = "vaultwarden/environment";
in {
  services.vaultwarden = {
    enable = true;
    config = with config.constants; {
      # Specify service port
      ROCKET_ADDRESS = localhost;
      ROCKET_PORT = port.vault;
      # Disable signup
      SIGNUPS_ALLOWED = false;
      # SMTP config
      SMTP_FROM = "vaultwarden@${domain}";
      SMTP_FROM_NAME = "vaultwarden";
      SMTP_HOST = "mail.${domain}";
      SMTP_USERNAME = "vaultwarden@${domain}";
      SMTP_PORT = 587;
      SMTP_SECURITY = "starttls";
    };
    environmentFile = config.sops.secrets.${vaultEnvironment}.path;
  };
  sops.secrets.${vaultEnvironment} = {};
}
Use vault admin token 2024-12-14 21:15:09 -08:00			`{config, ...}: let`
			`vaultEnvironment = "vaultwarden/environment";`
			`in {`
Refactor setup 2023-12-06 21:46:16 -08:00			`services.vaultwarden = {`
Clean branch 2023-10-09 10:44:07 -07:00			`enable = true;`
Refactor configs 2024-08-31 21:13:43 -07:00			`config = with config.constants; {`
Clean branch 2023-10-09 10:44:07 -07:00			`# Specify service port`
Refactor configs 2024-08-31 21:13:43 -07:00			`ROCKET_ADDRESS = localhost;`
			`ROCKET_PORT = port.vault;`
Setup vaultwarden smtp 2024-12-14 22:41:34 -08:00			`# Disable signup`
			`SIGNUPS_ALLOWED = false;`
			`# SMTP config`
			`SMTP_FROM = "vaultwarden@${domain}";`
			`SMTP_FROM_NAME = "vaultwarden";`
			`SMTP_HOST = "mail.${domain}";`
			`SMTP_USERNAME = "vaultwarden@${domain}";`
			`SMTP_PORT = 587;`
			`SMTP_SECURITY = "starttls";`
Clean branch 2023-10-09 10:44:07 -07:00			`};`
Use vault admin token 2024-12-14 21:15:09 -08:00			`environmentFile = config.sops.secrets.${vaultEnvironment}.path;`
Clean branch 2023-10-09 10:44:07 -07:00			`};`
Use vault admin token 2024-12-14 21:15:09 -08:00			`sops.secrets.${vaultEnvironment} = {};`
Clean branch 2023-10-09 10:44:07 -07:00			`}`